Zoom Video Communications, has recently received a variety of third-party certifications and attestations, unveiled product innovations, and established programs, which collectively demonstrate the many initiatives undertaken at Zoom that help protect the security and privacy of its users.
Jason Lee, Chief Information Security Officer at Zoom, said, “Safety, security, and privacy are at the core of how we make decisions at Zoom and enhance our platform,” “We remain committed to being a platform that users can trust for all of their online interactions, information, and business.”
Third-party certifications and attestations demonstrate effectiveness
At Zoom, third-party certifications and standards are integral to its security program’s foundation. Zoom recently expanded its list of growing attestations with the following:
- Publication of a Data Protection Impact Assessment (DPIA) on Zoom’s Meetings, Webinar, and Chat services from SURF. SURF, the collaborative organization for IT in Dutch education and research, and Zoom agreed to several actions in the course of collaborating on the DPIA. These include new features, improved transparency and documentation, enhanced practices, and a measurement plan. Learn more about the outcomes.
- Achievement of the Cyber Essentials Plus certification. This demonstrates Zoom’s commitment to the UK by achieving a security scheme, which makes it easier for local customers to assess the company’s IT systems. Learn more about this certification here.
- Provisional Authorization (PA) for Zoom for Government from Defense Information Systems Agency (DISA) for the Department of Defense (DoD) at Impact Level 4 (IL4). With this PA, the entire Zoom for Government platform will be available for use for those organizations in need of IL4-authorized solutions. Learn more about this authorization here.
- Common Criteria Certification. The Zoom Meeting Client is the first video communications client to attain certification for Common Criteria Evaluation Assurance Level 2 (v3.1 rev. 5), issued by the German Federal Office for Information Security (BSI). Learn more about the certification here.
- ISO/IEC 27001:2013 certification and SOC 2 + HITRUST requirements. Zoom Meetings, Zoom Phone, Zoom Chat, Zoom Rooms, and Zoom Webinar are now certified as International Organization for Standardization (ISO) / International Electrotechnical Commission (IEC) 27001:2013 compliant. Zoom also expanded the scope of its SOC 2 Type II report to include additional criteria to meet Health Information Trust Alliance Common Security Framework (HITRUST CSF) control requirements. Learn more here.
Features designed for security and privacy
In addition, Zoom continues to enhance its security features for all users with the introduction of recent innovations such as automatic updates in the Zoom client. With automatic updates, Zoom is helping users to receive important security fixes and other features, improving their overall experience with the Zoom platform.
Innovations that will soon be available include a Bring Your Own Key (BYOK) offering, which will be released this year, and Zoom’s end-to-end encryption (E2EE) offering will be rolled out to Zoom Phone, for one-on-one, intra-account phone calls that occur via the Zoom client later this year.
Read More News: https://www.enterpriseitworld.com/news/ I Watch CIOtv: https://ciotv.live/ I Read IT Partner News: https://www.smechannels.com/
